Seeds were generated using Perl's built-in rand function, which is predictable and unsuitable for security usage.
Analysis
Analysis and contextual insights are available on OpenCVE Cloud.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| TIMLEGGE | Crypt::DSA | unaffected |
|
No data.
No data.
| Vendor | Product | Confidence | Versions | ||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
| Timlegge | Crypt::dsa | 100% |
|
Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .
Vendor Solution
Upgrade to version 1.20 or later.
Tracking
Sign in to view the affected projects.
No advisories yet.
Mon, 18 May 2026 15:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
cvssV3_1
|
Sun, 17 May 2026 20:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Timlegge
Timlegge crypt::dsa |
|
| Vendors & Products |
Timlegge
Timlegge crypt::dsa |
Sat, 16 May 2026 01:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
Fri, 15 May 2026 22:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Crypt::DSA versions before 1.20 for Perl generate seeds using rand. Seeds were generated using Perl's built-in rand function, which is predictable and unsuitable for security usage. | |
| Title | Crypt::DSA versions before 1.20 for Perl generate seeds using rand | |
| Weaknesses | CWE-331 | |
| References |
|
MITRE
Status: PUBLISHED
Assigner: CPANSec
Published:
Updated: 2026-05-18T15:04:20.918Z
Reserved: 2026-05-15T17:20:11.254Z
Link: CVE-2026-8700
Vulnrichment
Updated: 2026-05-16T00:31:19.834Z
NVD
Status : Deferred
Published: 2026-05-15T22:16:57.020
Modified: 2026-06-17T11:04:18.220
Link: CVE-2026-8700
Redhat
No data.
OpenCVE Enrichment
Updated: 2026-05-18T16:30:05Z